Most recent sightings.

Most recent sightings. https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 05 May 2026 12:03:18 +0000 b775b10f-71dc-4021-9a6a-c4d79e718054 https://db.gcve.eu/sighting/b775b10f-71dc-4021-9a6a-c4d79e718054/export {"uuid": "b775b10f-71dc-4021-9a6a-c4d79e718054", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CISCO-SA-20170907-STRUTS2", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3799", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2017-9805\n\ud83d\udd25 CVSS Score: 8.1 (CVSS_V3)\n\ud83d\udd39 Description: The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to Remote Code Execution when deserializing XML payloads.\n\ud83d\udccf Published: 2018-10-16T19:37:56Z\n\ud83d\udccf Modified: 2025-02-07T17:42:07Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2017-9805\n2. https://github.com/apache/struts/commit/19494718865f2fb7da5ea363de3822f87fbda26\n3. https://github.com/apache/struts/commit/6dd6e5cfb7b5e020abffe7e8091bd63fe97c10a\n4. https://blogs.apache.org/foundation/entry/apache-struts-statement-on-equifax\n5. https://bugzilla.redhat.com/show_bug.cgi?id=1488482\n6. https://cwiki.apache.org/confluence/display/WW/S2-052\n7. https://github.com/apache/struts\n8. https://lgtm.com/blog/apache_struts_CVE-2017-9805\n9. https://security.netapp.com/advisory/ntap-20170907-0001\n10. https://struts.apache.org/docs/s2-052.html\n11. https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170907-struts2\n12. https://web.archive.org/web/20170909031344/http://www.securityfocus.com/bid/100609\n13. https://web.archive.org/web/20170922053119/http://www.securitytracker.com/id/1039263\n14. https://www.exploit-db.com/exploits/42627\n15. https://www.kb.cert.org/vuls/id/112992\n16. http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-9805-3889403.html\n17. http://www.securityfocus.com/bid/100609\n18. http://www.securitytracker.com/id/1039263", "creation_timestamp": "2025-02-07T18:02:56.000000Z"} {"uuid": "b775b10f-71dc-4021-9a6a-c4d79e718054", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CISCO-SA-20170907-STRUTS2", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3799", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2017-9805\n\ud83d\udd25 CVSS Score: 8.1 (CVSS_V3)\n\ud83d\udd39 Description: The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to Remote Code Execution when deserializing XML payloads.\n\ud83d\udccf Published: 2018-10-16T19:37:56Z\n\ud83d\udccf Modified: 2025-02-07T17:42:07Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2017-9805\n2. https://github.com/apache/struts/commit/19494718865f2fb7da5ea363de3822f87fbda26\n3. https://github.com/apache/struts/commit/6dd6e5cfb7b5e020abffe7e8091bd63fe97c10a\n4. https://blogs.apache.org/foundation/entry/apache-struts-statement-on-equifax\n5. https://bugzilla.redhat.com/show_bug.cgi?id=1488482\n6. https://cwiki.apache.org/confluence/display/WW/S2-052\n7. https://github.com/apache/struts\n8. https://lgtm.com/blog/apache_struts_CVE-2017-9805\n9. https://security.netapp.com/advisory/ntap-20170907-0001\n10. https://struts.apache.org/docs/s2-052.html\n11. https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170907-struts2\n12. https://web.archive.org/web/20170909031344/http://www.securityfocus.com/bid/100609\n13. https://web.archive.org/web/20170922053119/http://www.securitytracker.com/id/1039263\n14. https://www.exploit-db.com/exploits/42627\n15. https://www.kb.cert.org/vuls/id/112992\n16. http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-9805-3889403.html\n17. http://www.securityfocus.com/bid/100609\n18. http://www.securitytracker.com/id/1039263", "creation_timestamp": "2025-02-07T18:02:56.000000Z"} https://db.gcve.eu/sighting/b775b10f-71dc-4021-9a6a-c4d79e718054/export Fri, 07 Feb 2025 18:02:56 +0000